This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help

Head's Up! These forums are read-only. All users and content have migrated. Please join us at community.neo4j.com.

Neo4j encryption on data-at-rest

deepureet
Node Link

‎10-15-2020 10:39 PM

I'm looking for options to encrypt the data-at-rest. Please let me know for the details

0 Kudos
Reply
5 REPLIES 5

tony_chiboucas
Neo4j
Neo4j

‎10-16-2020 03:10 PM

Just use file/folder encryption on the Neo4j folder and children.

0 Kudos
Reply

deepureet
Node Link
In response to tony_chiboucas

‎10-17-2020 04:21 AM

I'm new to this encryption , sorry for the silly questions I ask. Would you let me know how can I read from this encrypted folder from neo4j or java

0 Kudos
Reply

tony_chiboucas
Neo4j
Neo4j
In response to deepureet

‎10-19-2020 10:10 AM

Google: "security at rest"
All it means is that the data is encrypted when the machine is off. When the machine is on, you can access it just like any other data.

It has zero bearing on Neo4j, would not impact Neo4j operations, and can not be implemented by Neo4j. It is form of security applied at the OS or filesystem, not in your database.

Also, it only protects your data in the event someone physically steals the hardware the data is stored on. If you're discussing "encryption at rest", then you're discussing data-security. That is a deep and complex subject that requires specific expertise and study to fully understand the scope and methods of keeping data secure.

I strongly advise you seek assistance from a software security expert

0 Kudos
Reply

deepureet
Node Link
In response to tony_chiboucas

‎10-20-2020 01:09 AM

Thank you Tony.. Do we have other option to encrypt the data at the database level which means that we will not be able to see the data in clear text until it is decrypted

Thanks in Advance

0 Kudos
Reply

tony_chiboucas
Neo4j
Neo4j
In response to deepureet

‎10-20-2020 10:33 AM

There are many ways to accomplish this, however they all come with risks and drawbacks.

You must have an encryption key when you add data to the graph, and when you need to read the data. Thus encrypting the data simply moves the risk from application itself, to the key and when/where you crypt.

Ultimately, you need to ask when must the data be un-encrypted. Once you have the answer to that question, you can define how/when to encrypt. However, if security is your concern, there are many other things worth considering first. Again, please get expert assistance. Proper security is not as simple as encrypting the data, and cannot be solved with a simple back-and-forth on a forum.

Reply
Nodes 2022
Nodes
NODES 2022, Neo4j Online Education Summit

All the sessions of the conference are now available online

Watch replays